Compaq/HP Insight Manager 7.x Certificate improper authentication
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.9 | $0-$5k | 0.00 |
A vulnerability, which was classified as critical, was found in Compaq/HP Insight Manager 7.x. This affects an unknown functionality of the component Certificate Handler. The manipulation with an unknown input leads to a improper authentication vulnerability. CWE is classifying the issue as CWE-287. When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct. This is going to have an impact on confidentiality, and integrity. The summary by CVE is:
The SSL HTTP Server in HP Web-enabled Management Software 5.0 through 5.92, with anonymous access enabled, allows remote attackers to compromise the trusted certificates by uploading their own certificates.
The bug was discovered 03/12/2004. The weakness was released 03/11/2004 by Dave Aitel with Immunity, Inc. (Website). The advisory is shared at immunitysec.com. This vulnerability is uniquely identified as CVE-2004-1811 since 05/04/2005. It is possible to initiate the attack remotely. No form of authentication is needed for exploitation. Technical details are unknown but an exploit is available.
The exploit is shared for download at immunitysec.com. It is declared as proof-of-concept.
Upgrading eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at h18023.www1.hp.com. The best possible mitigation is suggested to be upgrading to the latest version.
The vulnerability is also documented in the vulnerability database at X-Force (15466). Further details are available at h18023.www1.hp.com. Entries connected to this vulnerability are available at 82, 332, 333 and 427.
Product
Vendor
Name
Version
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB CVSS-B Score: 🔍VulDB CVSS-BT Score: 🔍
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.5VulDB Meta Temp Score: 5.9
VulDB Base Score: 6.5
VulDB Temp Score: 5.9
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Improper authenticationCWE: CWE-287
ATT&CK: Unknown
Local: No
Remote: Yes
Availability: 🔍
Status: Proof-of-Concept
Download: 🔍
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | unlock | unlock | unlock | unlock |
|---|---|---|---|---|
| Today | unlock | unlock | unlock | unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Patch: h18023.www1.hp.com
Timeline
03/11/2004 🔍03/12/2004 🔍
03/12/2004 🔍
03/15/2004 🔍
03/15/2004 🔍
03/15/2004 🔍
12/31/2004 🔍
05/04/2005 🔍
06/27/2019 🔍
Sources
Advisory: immunitysec.comResearcher: Dave Aitel
Organization: Immunity, Inc.
Status: Not defined
CVE: CVE-2004-1811 (🔍)
X-Force: 15466 - HP Web-enabled Management Software HTTP Server unauthorized certificate upload, Medium Risk
SecurityFocus: 9859 - HP HTTP Server Trusted Certificate Compromise Vulnerability
Secunia: 11126 - HP Web Based Management Anonymous Certificate Upload Vulnerability, Moderately Critical
OSVDB: 4251 - HP Web Based Management Anonymous Certificate Upload
Misc.: 🔍
See also: 🔍
Entry
Created: 03/15/2004 13:58Updated: 06/27/2019 22:14
Changes: 03/15/2004 13:58 (76), 06/27/2019 22:14 (2)
Complete: 🔍
No comments yet. Languages: en.
Please log in to comment.